Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A7C2/7AB850888E8911EEA6A5E357C4F9AE02/359611608E8A11EEB0250E59C4F9AE02.roa
File: 359611608E8A11EEB0250E59C4F9AE02.roa (raw, json)
Hash identifier: I7BXNTCJjoiB0TS0KLg27LZab39vgDW0TSlH+0KI/V0=
Subject key identifier: 7E:CC:4F:72:C0:00:EF:C0:00:D4:F2:F6:84:7C:EE:4C:A1:22:C9:EA
Certificate issuer: /CN=A911A7C2/serialNumber=FF2EDE94D307BC2389A4B739592A657F7161CCA2
Certificate serial: 02
Authority key identifier: FF:2E:DE:94:D3:07:BC:23:89:A4:B7:39:59:2A:65:7F:71:61:CC:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_y7elNMHvCOJpLc5WSplf3FhzKI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911A7C2/7AB850888E8911EEA6A5E357C4F9AE02/359611608E8A11EEB0250E59C4F9AE02.roa
Signing time: Wed 29 Nov 2023 07:37:55 +0000
ROA not before: Wed 29 Nov 2023 07:37:55 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 137967
IP address blocks: 36.50.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 08:14:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911A7C2/serialNumber=FF2EDE94D307BC2389A4B739592A657F7161CCA2
Validity
Not Before: Nov 29 07:37:55 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6566ea53-82a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bd:23:4a:bb:9d:38:58:f6:9e:3f:57:ef:e6:
6d:b9:de:da:fd:0c:83:c7:4a:ea:4b:cd:dc:41:75:
8d:c3:b2:3b:59:90:1a:2f:5a:0b:19:68:f2:da:da:
f6:03:ae:6e:60:e0:42:e3:ef:4e:fb:4d:81:87:e7:
a2:9c:a2:fe:38:90:e7:e5:79:1c:92:9f:8b:87:8d:
d2:74:d9:36:43:50:6a:d5:42:c6:b3:b8:77:38:cc:
f7:4f:ad:b2:e4:0a:02:7f:9b:ca:ae:88:52:09:fb:
ca:f8:ed:c0:ca:8d:99:21:91:ef:d1:bd:e1:1f:ba:
72:89:d5:f2:85:a6:6c:4b:86:1d:41:1e:b5:84:f7:
b6:84:fe:bb:bd:ca:ad:b3:97:7a:45:7b:cb:58:42:
00:25:8e:20:2e:b4:1d:61:e3:32:5d:44:0b:6f:bc:
ba:4c:b2:30:4e:b7:9f:56:28:70:ea:99:ff:3f:60:
31:36:80:95:62:7d:e7:8c:9e:27:2b:36:69:f9:74:
69:b4:1e:59:6c:97:e4:78:b3:dd:9a:e9:a9:60:03:
ea:db:75:a0:82:83:ce:e2:41:c7:4e:ea:b4:fc:6a:
00:aa:57:f4:85:14:77:7f:0d:8f:55:bf:42:7a:15:
1b:63:5a:33:6a:a3:55:5c:79:71:1e:aa:13:57:ee:
3e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CC:4F:72:C0:00:EF:C0:00:D4:F2:F6:84:7C:EE:4C:A1:22:C9:EA
X509v3 Authority Key Identifier:
keyid:FF:2E:DE:94:D3:07:BC:23:89:A4:B7:39:59:2A:65:7F:71:61:CC:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911A7C2/7AB850888E8911EEA6A5E357C4F9AE02/_y7elNMHvCOJpLc5WSplf3FhzKI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_y7elNMHvCOJpLc5WSplf3FhzKI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A7C2/7AB850888E8911EEA6A5E357C4F9AE02/359611608E8A11EEB0250E59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.11.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a1:b7:eb:26:ed:6e:c1:03:c1:bc:fa:84:93:1c:55:e2:4c:
4b:e9:c1:46:6f:4a:ab:c1:ad:72:01:8a:b0:b4:9f:7b:20:17:
85:0b:d7:1c:bd:95:ef:43:2c:7e:ae:a5:42:43:56:fb:eb:84:
e7:ab:12:6b:e9:b2:50:9a:91:8b:53:19:f3:51:ca:58:fe:22:
ff:ec:e8:3b:d1:90:fc:67:4b:75:72:20:1a:f8:ff:38:f5:3d:
cb:3a:ef:84:af:5c:6e:60:2d:8d:12:fd:5b:0e:42:c5:13:1f:
e8:3d:25:6f:32:73:41:16:8a:3b:4f:d3:4a:87:e5:b8:19:01:
aa:e8:45:ed:51:fb:d2:11:94:9a:54:6a:89:d6:e6:cb:16:99:
3b:75:7f:ed:d5:d0:5c:24:ce:f7:17:24:56:a9:f8:37:46:33:
98:53:14:8f:8b:17:76:8f:64:6d:3b:80:f8:dc:a1:31:5d:20:
52:c5:9b:31:d2:75:2d:8b:8e:50:8e:3c:5d:ec:d6:7d:26:e0:
06:ed:7f:19:5e:65:25:87:d8:0c:ad:8f:9e:14:4e:07:20:84:
64:98:48:74:51:81:01:6b:58:c3:ea:e5:3a:1c:d4:4d:8d:c8:
2d:af:c5:d2:44:d6:44:6c:35:9a:91:a7:c3:4f:0b:f8:c2:f5:
76:2f:5b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org